joeyh at alioth.debian.org
2008-Mar-15 09:14 UTC
[Secure-testing-commits] r8335 - data/CVE
Author: joeyh
Date: 2008-03-15 09:14:25 +0000 (Sat, 15 Mar 2008)
New Revision: 8335
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-03-15 01:23:56 UTC (rev 8334)
+++ data/CVE/list 2008-03-15 09:14:25 UTC (rev 8335)
@@ -343,6 +343,7 @@
CVE-2003-1546 (Cross-site scripting (XSS) vulnerability in gbook.php in
Filebased ...)
NOT-FOR-US: Filebased guestbook
CVE-2008-1218 (Argument injection vulnerability in Dovecot 1.0.x before 1.0.13,
and ...)
+ {DSA-1516-1}
- dovecot 1:1.0.13-1
[etch] - dovecot <not-affected> (Vulnerable code not present)
[sarge] - dovecot <not-affected> (Vulnerable code not present)
@@ -361,6 +362,7 @@
[etch] - ruby1.9 <no-dsa> (case insensitive FS, corner case)
NOTE:
http://www.ruby-lang.org/en/news/2008/03/03/webrick-file-access-vulnerability/
CVE-2008-1199 (Dovecot before 1.0.11, when configured to use mail_extra_groups
to ...)
+ {DSA-1516-1}
- dovecot 1:1.0.12-1 (medium; bug #469457)
CVE-2008-1132 (Untrusted search path vulnerability in src/mainwindow.c in Net
...)
NOT-FOR-US: Net Activity Viewer